Oreilly – Mastering Security-Enhanced Linux (SELinux) 2023-8 – Download

Description

Course “Mastering Linux with Enhanced Security” (SELinux). This course will help you understand and use SELinux. SELinux is a valuable addition to standard Linux security options to keep your Linux distribution secure. This course starts with the basics of SELinux and covers more advanced topics such as SELinux, Multi-Level Security (MLS) and Multi-Class Security (MCS), and managing SELinux with Ansible. It also covers SELinux in container environments in detail. This course includes labs throughout the course so you can observe SELinux in real time and practice while learning. The main features of the course are:

  • Understand when and how SELinux is needed
  • Learn how to troubleshoot problems with SELinux.
  • Make your application SELinux compatible
  • Implement military-grade security with SELinux MLS and MCS.
  • This course is also a complete resource for students who want to fully understand SELinux in preparation for any Red Hat Enterprise Linux-related exam, as well as for application developers and administrators who want to use SELinux. achieve the highest possible level of security.

What you will learn:

  • SELinux Basics: Covers basic concepts such as mandatory access control, how to enable SELinux, understanding context tags, managing context tags, and using booleans.
  • SELinux Analysis: Teaches SELinux analysis, covering troubleshooting and showing how to analyze Boolean values ​​and rules.
  • Using User Programs with SELinux: Shows user programs with SELinux and describes how to work with SELinux modules and how to make each program SELinux compatible.
  • Military-Grade Security for SELinux and MLS Users: Contains three lessons on the best type of protection and security that SELinux offers. It covers how SELinux is used in military organizations, as well as topics related to SELinux users, how to manage layered security, and how to use layered security.
  • Configuring SELinux for Containers: Describes how to fully secure your container environment by adding SELinux.
  • Managing SELinux with Ansible: Covers how to secure containers with SELinux and how to manage SELinux with Ansible.

This course is suitable for people who:

  • DevOps engineers
  • DevSecOps engineers
  • Software developers
  • manager

Course details

  • Publisher: Oreily
  • From: Sander van Vugt
  • Level of training: from beginner to advanced
  • Duration of training: 5 hours 21 minutes

Course headings

  • Introduction
    1. Mastering Security Enhanced Linux (SELinux): Introduction
  • Module 1: SELinux Basics
    1. module introduction
  • Lesson 1: Mandatory Access Control
    1. Learning Objectives
    2. 1.1 How SELinux works
    3. 1.2 Mandatory access control requirement
    4. 1.3 Understanding SELinux and Discretionary Access Control
    5. Lesson 1. Laboratory work. Studying SELinux settings.
    6. Lesson 1. Laboratory solution. Studying SELinux settings.
  • Lesson 2: Enabling SELinux
    1. Learning Objectives
    2. 2.1 Managing states and modes in Red Hat
    3. 2.2 Installing SELinux on Ubuntu
    4. 2.3 Understanding policies
    5. Lesson 2. Laboratory work. SELinux state management.
    6. Lesson 2. Laboratory solution. SELinux state management.
  • Lesson 3: Understanding Context Labels
    1. Learning Objectives
    2. 3.1 Displaying context labels
    3. 3.2 Understanding when to set context labels
    4. 3.3 Using the audit log to investigate problems
    5. 3.4. Understanding Context Inheritance
    6. Lesson 3. Laboratory work. Exploring SELinux events.
    7. Lesson 3. Laboratory solution. Exploring SELinux events.
  • Lesson 4: Managing Context Labels
    1. Learning Objectives
    2. 4.1 Finding the right context
    3. 4.2 Setting context for files
    4. 4.3 Setting up context for ports
    5. 4.4 Using custom types
    6. 4.5 Setting Apache DocumentRoot to something other than default
    7. Lesson 4. Laboratory work. Running SSH on port 443.
    8. Lesson 4. Laboratory solution. Running SSH on port 443.
  • Lesson 5: Using Boolean Values
    1. Learning Objectives
    2. 5.1 Understanding Boolean Values
    3. 5.2 Using boolean values
    4. 5.3 Searching for boolean values
    5. Lesson 5. Laboratory work. Setting up vsftpd for anonymous booting
    6. Lesson 5. Laboratory solution. Setting up vsftpd for anonymous booting
  • Module 2: SELinux Analysis
    1. module introduction
  • Lesson 6: Troubleshooting SELinux
    1. Learning Objectives
    2. 6.1 Troubleshooting SELinux
    3. 6.2. Understanding Audit Logs
    4. 6.3 Understanding Dontaudit rules
    5. 6.4 Using Audit2allow
    6. 6.5 Use of sealant
    7. 6.6 Booting SELinux manually
    8. Lesson 6: SELinux Troubleshooting Lab
    9. Lesson 6. Laboratory solution. Troubleshooting SELinux.
  • Lesson 7: Analyzing Boolean Values ​​and Rules
    1. Learning Objectives
    2. 7.1 Policy analysis
    3. 7.2 Terminology
    4. 7.3 Using search
    5. 7.4 Using seinfo
    6. 7.5. Find out what your domain can do
    7. 7.6 Logical value analysis
    8. 7.7 Analysis of transition rules
    9. Lesson 7: Laboratory Study of Boolean Values
    10. Lesson 7. Laboratory solution. Study of logical values.
  • Module 3: Using Custom Applications with SELinux
    1. module introduction
  • Lesson 8: SELinux Modules
    1. Learning Objectives
    2. 8.1 Module management
    3. 8.2 Writing custom modules
    4. 8.3 Creating custom modules
    5. Lesson 8. Laboratory work. Using modules in your application.
    6. Lesson 8. Laboratory solution. Including modules in your application.
  • Lesson 9: How to make any application work with SELinux
    1. Learning Objectives
    2. 9.1 Understanding the ability to launch custom applications
    3. 9.2 Use of unrestricted domains
    4. 9.3 Using run-on to launch applications with a specific context
    5. 9.4 Using sepolgen to create application policy modules
    6. Lesson 9. Laboratory work. Run any application on SELinux.
    7. Lesson 9. Laboratory solution. Run any application on SELinux.
  • Module 4: Military-grade security for SELinux and MLS users.
    1. module introduction
  • Lesson 10: SELinux Users
    1. Learning Objectives
    2. 10.1 Understanding users and roles
    3. 10.2 Mapping Linux users to SELinux users
    4. 10.3 Using Boolean Values ​​to Manage SELinux Users
    5. 10.4 Root restrictions
    6. Lesson 10 Lab Creating a Kiosk User
    7. Lesson 10. Laboratory solution. Creating a kiosk user.
  • Lesson 11: Using Multi-Level Security (MLS)
    1. Learning Objectives
    2. 11.1 Understanding MLS and MCS
    3. 11.2 Enabling MLS Policy
    4. 11.3 Creating a user with permission level
    5. 11.4 Understanding what to do with directories
    6. Lesson 11. Lab using MLS
    7. Lesson 11: Lab solution using MLS
  • Lesson 12: Using Multi-Category Security (MCS)
    1. Learning Objectives
    2. 12.1 Understanding MCS
    3. 12.2 Grouping users and applications using MCS
    4. 12.3 Merging MLS and MCS
    5. Lesson 12. Laboratory work. Setting up MCS.
    6. Lesson 12. Laboratory solution. Setting up MCS.
  • Module 5: SELinux, containers and Ansible
    1. module introduction
  • Lesson 13: SELinux and containers
    1. Learning Objectives
    2. 13.1 Understanding the needs of a SELinux container
    3. 13.2 Setting up access to container storage
    4. 13.3 Using udica to configure container access
    5. Lesson 13 Lab Configuring SELinux for Containers
    6. Lesson 13. Laboratory solution. Configuring SELinux for containers.
  • Lesson 14: Using Ansible to Manage SELinux
    1. Learning Objectives
    2. 14.1 Using SELinux Ansible modules
    3. 14.2 Using the RHEL system role to manage SELinux
    4. Lesson 14. Laboratory work. Using Ansible to manage SELinux.
    5. Lesson 14. Laboratory solution. Using Ansible to manage SELinux.
  • Summary
    1. Mastering Security-Enhanced Linux (SELinux): Summary

Course Prerequisites

  • Install and configure the lab environment. This could be a Linux virtual machine running virtualization software on the participant’s own computer using software such as VMware Workstation or Oracle VirtualBox, or on a dedicated computer. https://learning.oreilly.com/videos/red-hat-certified/9780134723990/
  • Install a virtual or physical machine running the latest version of Red Hat Enterprise Linux, CentOS Stream, Rocky Linux, or Fedora.

course images

Mastering Linux with Enhanced Security (SELinux)

Example video course

installation instructions

Once extracted, watch using your favorite player.

Subtitles: No

Quality: 720p

Download link

Download file – 944 MB.

Password for file(s): www.downloadly.ir

size

944 MB

free download software latest version